On Monday 12 July 2004 4:18 pm, John A. Sullivan III wrote:
> Hmmm . . . someone correct me if I'm wrong but I think your first rule
> will end processing in the nat table but the packet will still pass to
> the FORWARD table where, if it does not match a rule, it will be handled
> by your FORWARD chain policy - John
That is correct.
If you ACCEPT packets in the PREROUTING nat table, they will proceed to the
FORWARD filter table and start trundling through your ruleset.
If you DROP packets in the PREROUTING nat table, all sorts of things are
likely to break (depending on how indiscriminate your DROP policy is).
Antony.
--
"When you talk about Linux versus Windows, you're talking about which
operating system is the best value for money and fit for purpose. That's a
very basic decision customers can make if they have the information available
to them. Quite frankly if we lose to Linux because our customers say it's
better value for money, tough luck for us."
- Steve Vamos, MD of Microsoft Australia
Please reply to the list;
please don't CC me.
